Security Principles

Question 1

Confidentiality

Answer 1

Confidentiality relates to permitting authorised access to information, while at the same time protecting information from improper disclosure.

(Making the information confidential so those with access are the only one to access the information).

Question 2

The CIA Triad

Answer 2

Confidentiality
Integrity
Availability

Question 3

Integrity

Answer 3

Integrity is the property of information whereby it is recorded, used and maintained in a way that ensures its completeness, accuracy, internal consistency and usefulness for a stated purpose.

(Information has not been altered or changed).

Question 4

Availability

Answer 4

Availability means that systems and data are accessible at the time users need them.

(No matter where the data is, it is accessible whenever you need the information).

Question 5

Personally Identifiable Information (PII)

Answer 5

Information that can distinguish or traces an individuals identity:
Social Security Number (SSN)
Date of birth/Place of birth
Mothers Maiden Name
Biometric records

Question 6

Protected health information (PHI)

Answer 6

Information regarding health status & health care.

Question 7

Authentication

Answer 7

Authentications is the process or action of proving or showing something to be true.

Three Main methods of authentication:

Something you know: Passwords or passphrases
Something you have: Tokens, memory cards, smart cards
Something you are: Biometrics , measurable characteristics

Question 8

Non-repudiation

Answer 8

Non-repudiation ensures that no party can deny that it sent or received a message via encryption and/or digital signatures or approved some information.

A way to prove that you done something without going back on your action.